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Background of Invention 

Q [0001] Concern over the security and authenticity of transactions through and over 

pi computer systems has become a growing concern as the use of computer systems has 

W proliferated. That concern has given rise to the Trusted Computing Platform Alliance, 

Hi ■ 

m also know as the TCPA. The Design Philosophies statement of the TCPA states that the 

purpose of the activity is to encourage the use of computer platforms for critical 



O purposes by improving the basis on which a computing environment may be trusted. 

Ill 

f f [0002] The TCPA has developed a specification in addition to the Design Philosophy 
CI statement, and included In their materials a glossary of terminology used In their 

discussions. Certain terms appearing hereinafter may be found in that glossary as well 
as having meaning apart from the glossary definitions offered by the TCPA. While it is 
intended that the glossary definitions will be helpful, it is to be recognized at the 
outset of the discussion which follows that those definitions are deemed illustrative 
only and not fully binding on the terminology used. The choice of TCPA defined terms 
is made only for convenience and as an aid to understanding, avoiding restriction to 
those definitions as the meaning of the terminology is expected to expand as the 
technology becomes into wider use. 

[0003] A Trusted Platform is a platform that can be trusted by local users and by remote 
entities. TCPA uses a behavioral definition of trust: an entity can be trusted if it always 
behaves in the expected manner for the intended purpose. The basis for trusting a 
platform, or computer system, is a declaration by a known authority that a platform 
with a given identity can be trusted to measure and report the way it is operating. 
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[0004] One possibility for a trusted platform is tlie authentication by a user of a file or 
document generated at the platform or system and passed, supplied or delivered to 
another platform or system. Such transfer of a file or document may be by any of the 
known channels or forms of communicating data. When a user desires to give 
assurance that the data being transferred has been originated by that user, a process 
of authentication is Initiated. That is, some "signature" or authenticating data is 
supplied which gives the appropriate assurance to a recipient as to the "trustability" of 
the origin of the data. 

[0005] As will be understood, it is of importance that such signature be maintained as 
trustworthy. For that purpose, various forms of attack on the trusted capabilities for 
such a signature should be anticipated. The present invention deals with one such 
form of attack. 

It is somewhat conventional for protection of authentication capabilities to be 
achieved by use of passwords or passphrases. Computer system users are likely 
familiar with such capabilities as power-on, hard drive and network passwords, as 
well as passwords for access to secured internet sites. An authenticating signature 
capability is similarly protected. Such passwords or passphrases are typically entered 

from the conventional alphanumeric keyboard coupled to a computer system. 

II 

[0007] However, attacks may become focused on necessary transition points in the use of 
computer systems. For example, a user may wish to create a file or document while 
the system is in a insecure state, and then later provide that file or document in a 
trusted form. In order to arrive at the trusted form, the user must reach and apply the 
TCPA functions which establish the trustworthiness of the system, and then supply the 
signature. The transition from the insecure to the trusted states may present a 
conceivable avenue of attack for a person wishing to subvert the trusted nature of the 
system. For example, a keystroke capture program of a type operating outside the 
awareness of the user may capture and report keystrokes entered at a system 
keyboard, as is conventionally done with passwords or passphrases. Such operation 
may expose the system to capture of passwords or passphrases for nefarious 
purposes. 

Summary of Invention 



[0006] 
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[0008] In order to avoid the likelihood of inadvertent disclosure or attachment of an 
authenticating data string, what is described hereinafter is a computer system, and 
method of operation which selectively interposes between a conventional computer 
system keyboard and a security element associated with the system motherboard a 
second input device which requires a second authenticating Input in order to enable 
recognition of an authenticating input from the conventional keyboard. 

Brief Description of Drawings 

[0009] Some of the purposes of the invention having been stated, others will appear as 
the description proceeds, when taken in connection with the accompanying drawings, 
in which: 

S [0010] Figure 1 is an illustration of a computer system in which the present invention Is 
Implemented; 

W..- 

g| [0011] Figure 2 is an illustration drawn from the TCPA PC Specific Implementation 

Specification to illustrate the presence of certain elements of the system of Figure 1 ; 



in [001 2] Figure 3 is a schematic representation of one manner of interposing a second 
f ^ input device between a first input device and a security element; and 

I.I 

f|| [001 3] Figure 4 is a schematic representation of another manner of controlling the 
interposing of a second input device between a first input device and a security 
element. 

Detailed Description 

[001 4] While the present invention will be described more fully hereinafter with reference 
to the accompanying drawings, in which a preferred embodiment of the present 
invention is shown, it is to be understood at the outset of the description which 
follows that persons of skill in the appropriate arts may modify the invention here 
described while still achieving the favorable results of the invention. Accordingly, the 
description which follows is to be understood as being a broad, teaching disclosure 
directed to persons of skill in the appropriate arts, and not as limiting upon the 
present invention. 
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[001 5] Referring now to Figure 1 , a computer system is there shown and generally 

identified at 1 0. The system includes a display 1 1 and a keyboard 1 2 associated with 
the system 1 0. In accordance with this invention, the system is provided with a 
Trusted Platform Module (TPM) indicated at 21 in Figure 2. The keyboard 12 serves as 
a primary data entry device, including data directed at the TPM 21 such as a password 
or passphrase necessary to exercise trusted computing funaions such as 
authentication of a signature. 

[001 6] The TPM 21 may be implemented by the provision of a special purpose 

semiconductor package coupled to the motherboard indicated at 22 in Figure 2. The 
semiconductor package, also sometimes referred to as a chip or application specific 
integrated circuit (ASIC), may be coupled to the motherboard 22 in at least two ways: 
by mounting on a daughter card which is received in a socket provided on the 
motherboard, or by soldering directly onto the motherboard as the motherboard is 
manufactured. A daughter card, as is known to persons of skill in the appropriate arts, 
is a small printed circuit board mounting one or a few components and received in a 
socket provided on the motherboard. An example is shown In Figure 5 of U.S. Patent 
5,301 ,343 Issued 5 April 1 994, where a daughter card 1 90 is received in a socket 1 95 
provided on a motherboard 1 20. To any extent necessary to an understanding of this 
Invention, this disclosure is incorporated by this reference. In the present illustrative 
embodiment, the component mounted on the daughter card will be the TPM, rather 
than the memory elements disclosed in the referenced patent. 

[001 7] In either arrangement, or in any other arrangement which the person of skill in the 
applicable arts may devise within the scope of this invention, provision is made for 
selectively interposing a second input device between the keyboard 1 2 and the TPM 
21 . Two points are of interest in this regard: the manner in which the device is 
selectively interposed and the nature of the second input device. The second input 
device is indicated at 1 4 in Figure 1 . 

[001 8] 

Turning first to the manner in which the device is selectively interposed, one 
manner of such interposition is physical. That is, the device 1 4 may be connected 
between the motherboard connector and the daughter card bearing the TPM 21 , as by 
providing an interposer connector 31 having the requisite male and female coupling 
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surfaces and appropriate signal passing pathways to place the second device in the 
path of communication from the keyboard 1 2 to the TPM 21 through a motherboard 
connector 32. See Figure 3. Alternatively, and in instances where an connector is 
unavailable for such interposition, the second device may be connected through a 
switch 41 settable to two states, one In which the second device 14 is interposed and 
the other in which direct data transfer from the keyboard to the TPM 21 is enabled. 
See Figure 4. 

[001 9] The second device 1 4 may be a numeric keypad or a biometric measuring device 
such as a fingerprint or retinal scanner or a key acceptor such as a card reader 
capable of accepting and reading magnetic stripe or code bearing smart cards. The 
I numeric keypad is perhaps the simplest form, and is useful where the secondary 

I security requirement imposed is entry of a digital string of numbers, such as those 

I known as a Personal Identification Number (PIN). A biometric measurement device is 

{ useful where the secondary security requirement is to be tied to a specific individual. 

I A key acceptor is useful where the secondary security requirement is to be tied to the 

. possession of a physical key such as the mentioned cards. 

I [0020] With the second input device interposed, entry of a password through the 

conventional keyboard 1 2 will be insufficient to access the secure functions achievable 
I through the TPM 21 . Instead, the keystrokes necessarily entered through the first 

input device 1 2 must be validated by compliance with the secondary security 
requirement in order for the entry to become effective. Thus capture of those 
keystrokes alone will fail to make the secure levels of the trusted computing platform 
accessible and a greater assurance of authentication is achieved. 

[0021] It is contemplated, as will be clear from the discussion above, that this higher level 
of assurance can be selected or deselected. Where such selection is done by either 
inserting or removing the interposer connector of Figure 3, an authorized person such 
as a system administrator may effectuate a decision as to the level of assurance 
desired. With switch selection, moving between the levels of assurance may be more 
easily effectuated, should that be desired. The switch 41 may be positioned accessible 
to a user or within the computer housing so as to normally be inaccessible to the user. 

In operation, the computer system 10 operates in accordance with a method in 



APP ID=1 0063988 



Page 5 of 



which the keyboard 1 2 is coupled to a security element 21 in a trusted computing 
platform system to enable entry of data to the security element, and a second input 
device imposing a security requirement for effective entry of data to the security 
element from the keyboard is selectively interposed between the keyboard and the 
security element. The seleaive interposing may be accomplished, as described above, 
by physical interposition or by switching. The second device security requirement may 
be met by a PIN, a biometric measurement, or provision of a physical key. 

[0023] In the drawings and specifications there has been set forth a preferred 

embodiment of the invention and, although specific terms are used, the description 
thus given uses terminology in a generic and descriptive sense only and not for 
r| purposes of limitation. 



CI 
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